GCP Certificate Manager plugin requires
- GCP Project: Active Google Cloud project with Certificate Manager API enabled
- Service Account: Service account with appropriate permissions
- IAM Permissions: The service account needs the following permissions:
certificatemanager.certs.listcertificatemanager.certs.get
Service Account Setup
Create a Service Account:
gcloud iam service-accounts create cert-discovery \ --description="Service account for Certificate Manager discovery" \ --display-name="Certificate Discovery"Grant Certificate Manager Permissions:
gcloud projects add-iam-policy-binding YOUR_PROJECT_ID \ --member="serviceAccount:cert-discovery@YOUR_PROJECT_ID.iam.gserviceaccount.com" \ --role="roles/certificatemanager.viewer"Generate Service Account Key:
gcloud iam service-accounts keys create cert-discovery-key.json \ --iam-account=cert-discovery@YOUR_PROJECT_ID.iam.gserviceaccount.com